SEGMENTED, ENCRYPTED PDL FOR POST-RENDERING ANALYSIS 

Background and Summary of the Invention 
The present invention relates to document print job encryption, and in particular, 
to a method, and to a print job data file resulting from implementation of that method, 
5 whereby post-rendering analyses of the job's encrypted print stream can take place 
without revealing the substantive content of the print job per se. 

Typically, a document print job is secured by encrypting the related PDL data 
such that if it is intercepted, as it may be, between the host and the intended recipient 
printing (imaging) device, it cannot be interpreted, viewed or printed in any unauthorized 
10 manner. However, it is also typical that the manner in which such PDL data is encrypted 
results in an attempted post-rendering analysis process, such as a process involving job 
auditing, job accounting, and job splitting, failing because of the fact that the analysis 
process itself, in order to succeed, needs to have access to certain non-substantive content 
data which it cannot get because of the overall and generalized encryption which has 
15 previously taken place. 

Various approaches to encryption so far have not offered a satisfactory way to 
assure secure encryption only of substantive content materials, while leaving other print 
job data file information generally accessible for post-rendering analyses of the types 
generally suggested above, as well as others. 
20 The present invention addresses this issue in a very complete and satisfactory way 

by proposing an encryption methodology whereby a document print job data stream is 
segmented appropriately to allow for encryption to take place at essentially all regions 
other than those which preferably should remain accessible for various post-rendering 
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processes/analyses. Fundamentally, practice of the present invention, in its preferred and 
best-mode form, features a method for encrypting a document print job including the 
steps of (a) identifying and individuating, within such a job, the so-called content 
commands as distinguished from the non-content commands associated with the job, and 

5 (b) as a consequence of that identifying and individuating practice, encrypting only data 
that is contained within the content commands. This approach will, in most instances, 
yield an encrypted print job data stream whose relevant non-substantive contents will be 
fully accessible and available for all expected post-rendering processes and analyses. 

Another approach to implementing the invention, which deals with a document 

10 print job data stream with an even smaller, or finer, degree of treatment granularity, 
involves recognizing that the content commands themselves typically include both non- 
content fields and content fields. In this practice of the invention, encryption only takes 
place with respect to such content fields, thus leaving the remainder of the entirety of the 
associated print job data stream accessible to post-rendering processes and analyses. 

15 Provided immediately below is a hierarchical, textual representation of the typical 

architecture of a document print-job in relation to the make-up of page instructions for a 
given page in the associated document. 
I. Page Instructions 

A. Non-content commands - no ink-on-paper 

20 B. Content commands - ink-on-paper 

( 1 ) Non-content fields 

(2) Content fields 
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Page non-content commands do not cause "ink-on-paper" Typical of such 
commands are (a) the number of copies per page, (b) page orientation, (c) cursor position, 
and (d) pen color. Page content commands do cause ink-on-paper, and include, as above 
indicated, both non-content fields and content fields. Illustrations of non-content fields 
5 include (a) command opcode, (b) length of command operand, and (c) command 
delimiter. An illustration of a content field is a command operand itself. 

The above-mentioned and other features and advantages of the present invention 
will become more fully apparent as the detailed description below is read in conjunction 
with the accompanying drawings. 
10 Description of the Drawings 

Fig. 1 is a block/schematic diagram generally illustrating a document printing (or 
imaging) environment wherein a document print job data stream is encrypted, in 
accordance with practice of the present invention, to protect the security of the 
substantive content contained within the relevant data stream, without that encryption 
15 blocking access to various post-rendering processes and analyses. 

Fig. 2 is a stylized diagram generally illustrating pictorially the preferred and best 
mode embodiment and practice of the present invention, which practice yields a protected 
and encrypted print job data stream at a level wherein all print-job content commands are 
encrypted. 

20 Fig. 3 isolates a portion of Fig. 2, and illustrates the content-command/non- 

content-command architecture of the print job data stream shown in Fig. 2. 
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Fig. 4 is similar to Fig. 2, except that this figure illustrates a modified form of the 
invention - the above-referred-to finer granularity form of the invention - wherein only 
the content-field portions of content commands in a print-job data stream are encrypted. 

Fig. 5 isolates a portion of Fig. 4, and illustrates the content-field/non-content- 
5 field architecture of one of the content commands shown in Fig. 4. 

Fig. 6 presents an algorithmic illustration of practice of the invention as pictured 
in Fig. 2. 

Fig. 7 presents a similar illustration of practice of the invention as pictured in Fig. 

4. 

10 Detailed Description of the Invention 

Turning now to the drawings, and referring first of all to Fig.l, indicated generally 
at 10 is a document printing environment including a host computer 12 and an intended 
recipient printer, or printing (imaging) device, 14. A suitable communication 
interconnection 16 extends between host 12 and printer 14, and this interconnection 

15 might be, as an illustration, a local network. The nature of this communication path is 
not important to an understanding of the invention. 

Represented by three darkened dots 18, 20, 22 along the length of path 16 
between host 12 and printer 14 are three nodes at whose locations, figuratively speaking, 
several post-rendering analyses processes, like those which were mentioned earlier 

20 herein, are staged for activity. With regard to nodes 18, 20, 22, the respective associated 
processes are represented in a stylized way by dashed-line rectangles 18a, 20a, 22a, 
respectively. 
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Within environment 10, it is desired to transmit a document print job in a data 
stream, shown fragmentarily at 24 in Fig. 1, which is encrypted in such a fashion that an 
authorized exposure and access to substantive document content cannot take place. Data 
stream 24 has been rendered in computer 12 for compatibility with printer 14. Very 

5 specifically, it is desired that while such encryption is in fact in place with respect to print 
job 24, the data stream making up that print job, as it engages nodes 18, 20, 22, can 
nevertheless be subjected to post-rendering analyses, etc. activities by processes 18a, 20a, 
22a, respectively. In order that this can take place, it will be necessary that the data 
information required by these nodes not be hidden behind a wall of encryption, and yet 

10 not be enabling for post-rendering access in a manner which simultaneously, and 
undesirably, exposes substantive document content contained within job 24. 

Fig. 2 in the drawings, which should now be read along with Figs. 3 and 6, 
illustrates the preferred and best-mode manner of practicing the present invention so as to 
create an encrypted data stream as a product of practice of the method of the invention, 

15 wherein content is secured, and yet other information required by processes 18a, 20a, 22a 
is nonetheless available. In this illustration of the invention, an assumption is made that 
processes 18a, 20a, 22a do not need access to any information contained in a print job's 
content commands. Hence, complete encryption of such content commands will not 
interfere with any of these three processes. 

20 In Fig. 2, a fragment of print job 24 is shown including four visually distinguished 

and labeled regions, two of which, shaded regions 24ai 24a2, represent ink-on-paper page 
content commands which are associated, respectively, with two non-ink-on-paper page 
non-content commands 24bi, 24t>2, respectively. Regions 24a, and 24b, collectively 
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make up one full page instruction. Similarly, regions 24a2 and 24b2 make up another full 
page instruction. Enlarged, fragmentary Fig. 3 illustrates in a somewhat more explicit 
way how regions 24b i, 24b>2 in data stream 24 fit the hierarchical architecture of page 
instructions set forth above herein. 

5 Under circumstances where complete encryption only of components 24ai, and 

24b i will nevertheless leave accessible, in components 24bi, 24b2, all information 
required by processes 18a, 20a, 22a (the assumption just stated above), then practice of 
the preferred mode of this invention which implements encryption only of such page 
content commands, 24ai, 24a2, will accomplish the key objective of this invention, which 

10 is to insure protected encryption of substantive document content, without interfering 
with the capability for processes 18a, 20a, 22a to perform post-rendering processing and 
analyses. Accordingly, practice of the invention as illustrated in Fig. 2, involves 
performing encryption only with respect to regions 24ai, 24b i, thus to yield an encrypted 
data stream, represented pictorially at the right side of Fig. 2, with regions 24ai, 24bi 

15 shown surrounded by dash-dot lines. 

A reading now of the statements set forth in Fig. 6 will provide an algorithmic 
expression of this preferred-mode practice of the invention. 

In another approach to practicing this invention, under circumstances where 
certain portions (content-field portions) within the content commands, such as portions 

20 within commands 24ai, 24b i, need to be available for post-rendering analyses, a modified 
form of the invention is implemented. This practice form is illustrated in Figs. 4, 5 and 7. 
According to this modified form of the invention, a further identification and 
individuation of portions within print job 24 takes place, whereby, within the respective 
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content commands, content fields are differentiated from non-content fields, and 
encryption is performed only with respect to the finer- granularity content fields. This is 
clearly shown pictorially in Figs. 4 and 5, and is described in algorithmic statements 
presented in Fig. 7. 

In Figs. 4 and 5, this finer degree of segmentation-granularity is shown by 
illustrations which individuate the content-field and non-contact-field portions of content 
commands 24aj, 24a2. The content-field portions within commands 24ai, 24§2 are shown, 
respectively, at 24c i, 24c2, and the non-content-field portions are pictured, respectively, at 
24d u 24d2 

As is true in Fig. 2, the encrypted portions here are shown surrounded by dash-dot 
lines on the right side of Fig. 4. Fig. 5 relates to Fig.4 in the same manner that Fig. 3 
relates to Fig. 2. 

Thus a preferred manner of practicing the invention , and one modified form 
thereof, are fully described and illustrated. The unique, resulting encrypted print jobs are 
clearly pictured at the right sides of Figs. 2 and 4. These two encrypted jobs differ with 
regard to the granularity of segmented encryption. Other modifications and variations 
may come to the minds of those skilled in the art, and these can certainly be introduced 
and employed without departing from the spirit of the invention. 
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